Snort mailing list archives
Re: Barnyard's explained
From: sekure <sekure () gmail com>
Date: Tue, 20 Jul 2004 22:42:34 -0400
Barnyard takes that unified log file, which by itself does you no good since it's in binary format and you can't read it, and process it, outputing the alerts to a variety of devices, be it regular text files, syslog or databases. ----- Original Message ----- From: Tom Fulton <tfulton9909 () comcast net> Date: Tue, 20 Jul 2004 19:33:22 -0700 Subject: [Snort-users] Barnyard's explained To: snort-users () lists sourceforge net Can someone explain what the benefit is of using Barnyard? I understand that the unified output plug in allows Snort to write alerts and logs into a single binary file which frees up processing from the detection engine (as apposed to writing to a flat file, etc) so that Snort runs faster overall. However, Snort does that by itself. I'm not clear on what value Barnyard adds to this. thanks ------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Barnyard's explained Tom Fulton (Jul 20)
- Re: Barnyard's explained sekure (Jul 20)
- Re: Barnyard's explained Jason Haar (Jul 21)
- Re: Barnyard's explained Dirk Geschke (Jul 21)
- Re: Barnyard's explained Alejandro Flores (Jul 21)